Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nas vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2024-21899
An improper authentication vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to compromise the security of the system via a network. We have already fixed the vulnerability in the following versions...
Qnap Qts 5.1.3.2578
Qnap Quts Hero H5.1.3.2578
Qnap Qts 4.5.4.2627
Qnap Quts Hero H4.5.4.2626
Qnap Qts
Qnap Qutscloud
Qnap Quts Hero
3 Github repositories
1 Article
9.8
CVSSv3
CVE-2020-9054
Multiple ZyXEL network-attached storage (NAS) devices running firmware version 5.21 contain a pre-authentication command injection vulnerability, which may allow a remote, unauthenticated malicious user to execute arbitrary code on a vulnerable device. ZyXEL NAS devices achieve a...
Zyxel Nas326 Firmware
Zyxel Nas520 Firmware
Zyxel Nas540 Firmware
Zyxel Nas542 Firmware
Zyxel Atp100 Firmware
Zyxel Atp200 Firmware
Zyxel Atp500 Firmware
Zyxel Atp800 Firmware
Zyxel Usg20-vpn Firmware
Zyxel Usg20w-vpn Firmware
Zyxel Usg40 Firmware
Zyxel Usg40w Firmware
Zyxel Usg60 Firmware
Zyxel Usg60w Firmware
Zyxel Usg110 Firmware
Zyxel Usg210 Firmware
Zyxel Usg310 Firmware
Zyxel Usg1100 Firmware
Zyxel Usg1900 Firmware
Zyxel Usg2200 Firmware
Zyxel Vpn50 Firmware
Zyxel Vpn100 Firmware
1 Github repository
1 Article
9.8
CVSSv3
CVE-2018-11510
The ASUSTOR ADM 3.1.0.RFQ3 NAS portal suffers from an unauthenticated remote code execution vulnerability in the portal/apis/aggrecate_js.cgi file by embedding OS commands in the 'script' parameter.
Asustor Adm
2 EDB exploits
1 Github repository
9.8
CVSSv3
CVE-2020-2501
A stack-based buffer overflow vulnerability has been reported to affect QNAP NAS devices running Surveillance Station. If exploited, this vulnerability allows malicious users to execute arbitrary code. QNAP have already fixed this vulnerability in the following versions: Surveill...
Qnap Surveillance Station
9.8
CVSSv3
CVE-2021-28797
A stack-based buffer overflow vulnerability has been reported to affect QNAP NAS devices running Surveillance Station. If exploited, this vulnerability allows malicious users to execute arbitrary code. QNAP have already fixed this vulnerability in the following versions: Surveill...
Qnap Surveillance Station
7.5
CVSSv3
CVE-2002-1949
The Network Attached Storage (NAS) Administration Web Page for Iomega NAS A300U transmits passwords in cleartext, which allows remote malicious users to sniff the administrative password.
Iomega Nas A300u Firmware -
7.5
CVSSv3
CVE-2019-6160
A vulnerability in various versions of Iomega and LenovoEMC NAS products could allow an unauthenticated user to access files on NAS shares via the API.
Lenovo Px12-350r Firmware
Lenovo Ix12-300r Firmware
Lenovo Home Media Network Hard Drive Firmware
Lenovo Storcenter Ix2-200 Firmware
Lenovo Storcenter Ix4-200d Firmware
Lenovo Storcenter Ix4-200rl Firmware
9.8
CVSSv3
CVE-2017-10700
In the medialibrary component in QNAP NAS 4.3.3.0229, an un-authenticated, remote attacker can execute arbitrary system commands as the root user of the NAS application.
Qnap Qts 4.3.3.0229
NA
CVE-2024-34476
Open5GS prior to 2.7.1 is vulnerable to a reachable assertion that can cause an AMF crash via NAS messages from a UE: ogs_nas_encrypt in lib/nas/common/security.c for pkbuf->len.
6.5
CVSSv3
CVE-2017-7638
QNAP NAS application Media Streaming add-on version 421.1.0.2, 430.1.2.0, and previous versions does not authenticate requests properly. Successful exploitation could lead to change of the Media Streaming settings, and leakage of sensitive information of the QNAP NAS.
Qnap Media Streaming Add-on
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »